2024-05-03_b9f4b7531bf667457d725c6e8a868109_icedid

Sharing

Copy URL Twitter E-mail

General

Target

2024-05-03_b9f4b7531bf667457d725c6e8a868109_icedid
Size

13.0MB
MD5

b9f4b7531bf667457d725c6e8a868109
SHA1

54e65f6dd04ab528b4ec7bdaa36f26a34f4fc61c
SHA256

646132289fd3cf89de17ad9a80f8c6c3ee1fd1eb1c5d0962c5ca2e30236435f5
SHA512

2f05df710c6e36ac3b612cf46de4fee47098da9ff158a8a5f01bfda2240eb3439c966165f58c0aee8edc53bcd36f16acdb43dab653185b0244f0155463b1e0f7
SSDEEP

196608:KmFxJi7UHUxqXyN51Uj+UE4blr6a0ZFcCp7xJJ:THtDB7CnH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-05-03_b9f4b7531bf667457d725c6e8a868109_icedid

Files

2024-05-03_b9f4b7531bf667457d725c6e8a868109_icedid
.exe windows:6 windows x86 arch:x86

c75ccccc12d6d6c80930b22ee027c228

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetStdHandle
FreeLibraryAndExitThread
ExitThread
CreateThread
VirtualQuery
VirtualAlloc
GetSystemInfo
CreateFileW
GetConsoleMode
GetConsoleOutputCP
GetFullPathNameW
GetDriveTypeW
GetCommandLineW
GetCommandLineA
QueryPerformanceFrequency
GetDateFormatW
WriteConsoleW
GetModuleHandleExW
GetFileType
GetStdHandle
RtlUnwind
GetStringTypeW
LCMapStringEx
InitializeCriticalSectionEx
RaiseException
OutputDebugStringW
HeapQueryInformation
GetTimeZoneInformation
DeleteFileW
GetTimeFormatW
CompareStringW
LCMapStringW
IsValidLocale
EnumSystemLocalesW
SetFilePointerEx
ReadConsoleW
GetCurrentDirectoryW
FindFirstFileExW
FindNextFileW
IsValidCodePage
GetEnvironmentStringsW
FreeEnvironmentStringsW
InitializeSListHead
QueryPerformanceCounter
GetStartupInfoW
IsDebuggerPresent
SleepConditionVariableSRW
WakeAllConditionVariable
AcquireSRWLockExclusive
ReleaseSRWLockExclusive
TerminateProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
IsProcessorFeaturePresent
GetUserDefaultLCID
GetTempFileNameA
Sleep
GetProfileIntA
GetTickCount64
SearchPathA
GetWindowsDirectoryA
FindResourceExW
GetTempPathA
SetErrorMode
GetFileTime
GetFileSizeEx
GetFileAttributesExA
GetCurrentDirectoryA
GetACP
GetCPInfo
GetOEMCP
VirtualProtect
GetUserDefaultUILanguage
GetSystemDefaultUILanguage
GetLocaleInfoW
GlobalFlags
LocalReAlloc
LocalAlloc
GlobalHandle
GlobalReAlloc
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSection
VerifyVersionInfoA
VerSetConditionMask
FileTimeToSystemTime
SystemTimeToTzSpecificLocalTime
FindNextFileA
FileTimeToLocalFileTime
lstrcmpiA
GetCurrentProcess
DuplicateHandle
GetVolumeInformationA
WriteFile
UnlockFile
SetFilePointer
SetEndOfFile
ReadFile
LockFile
GetFullPathNameA
GetFileSize
FlushFileBuffers
DeleteFileA
CreateFileA
GetCurrentProcessId
lstrcmpA
GetCurrentThread
WritePrivateProfileStringA
GetPrivateProfileStringA
GetPrivateProfileIntA
ResumeThread
SetThreadPriority
WaitForSingleObject
CloseHandle
CompareStringA
GlobalGetAtomNameA
GlobalFindAtomA
GlobalAddAtomA
lstrcmpW
GlobalDeleteAtom
LoadLibraryW
LoadLibraryA
LoadLibraryExW
GetProcAddress
GetModuleHandleW
GetModuleHandleA
GetModuleFileNameW
FreeLibrary
GetSystemDirectoryW
GetCurrentThreadId
EncodePointer
CopyFileA
FormatMessageA
LocalFree
GlobalFree
GlobalLock
GlobalUnlock
GlobalSize
GlobalAlloc
SetLastError
GetVersionExA
GetFileAttributesA
FindFirstFileA
FindClose
lstrlenA
lstrcpyA
GetLocaleInfoA
FindResourceA
MultiByteToWideChar
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
LeaveCriticalSection
OutputDebugStringA
EnterCriticalSection
GetProcessHeap
HeapSize
HeapFree
HeapReAlloc
HeapAlloc
GetLastError
DecodePointer
MulDiv
GetModuleFileNameA
WideCharToMultiByte
FindResourceW
SizeofResource
LockResource
LoadResource
GetSystemTimeAsFileTime
ExitProcess
SetEnvironmentVariableW

user32

GetNextDlgGroupItem
SetRectEmpty
CharUpperA
MapVirtualKeyA
GetKeyNameTextA
SystemParametersInfoA
IsZoomed
GetWindowThreadProcessId
ShowOwnedPopups
TranslateMessage
GetMessageA
EndDialog
CreateDialogIndirectParamA
IsDialogMessageA
IsWindowEnabled
SendDlgItemMessageA
IsDlgButtonChecked
SetDlgItemTextA
MoveWindow
ShowWindow
GetMonitorInfoA
MonitorFromWindow
WinHelpA
GetScrollInfo
SetScrollInfo
LoadIconA
CallNextHookEx
SetWindowsHookExA
GetWindow
GetLastActivePopup
GetTopWindow
GetClassNameA
GetClassLongA
MessageBoxA
AdjustWindowRectEx
RemovePropA
GetPropA
SetPropA
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
ScrollWindow
ValidateRect
SetForegroundWindow
GetForegroundWindow
SetActiveWindow
TrackPopupMenu
SetMenu
GetMenu
GetCapture
SetFocus
GetDlgCtrlID
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
GetWindowPlacement
SetWindowPos
DestroyWindow
IsChild
IsMenu
CreateWindowExA
GetClassInfoExA
GetClassInfoA
RegisterClassA
CallWindowProcA
DefWindowProcA
GetMessageTime
GetMessagePos
PeekMessageA
DispatchMessageA
RegisterWindowMessageA
SetMenuItemInfoA
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
EnableMenuItem
CheckMenuItem
EndPaint
OpenClipboard
GetWindowDC
UnhookWindowsHookEx
RemoveMenu
CopyImage
GetMenuItemCount
GetMenuItemID
GetMenuState
GetMenuStringA
DrawFrameControl
TabbedTextOutA
CloseClipboard
SetClipboardData
EmptyClipboard
SendMessageA
EnableWindow
LoadAcceleratorsA
TranslateAcceleratorA
GetSysColor
GrayStringA
DrawTextExA
DrawTextA
UpdateWindow
KillTimer
SetTimer
GetDesktopWindow
PtInRect
MapWindowPoints
GetCursorPos
RedrawWindow
ReleaseCapture
SetCapture
DrawEdge
GetIconInfo
CreateIconIndirect
LoadImageA
DrawIconEx
SetLayeredWindowAttributes
GetSysColorBrush
LoadCursorW
EnumDisplayMonitors
GetMenuItemInfoA
IntersectRect
RealChildWindowFromPoint
GetAsyncKeyState
MapDialogRect
IsClipboardFormatAvailable
SetRect
DestroyIcon
DestroyCursor
OffsetRect
DeleteMenu
WaitMessage
BringWindowToTop
CreatePopupMenu
InsertMenuItemA
UnpackDDElParam
ReuseDDElParam
SetParent
GetClientRect
EqualRect
GetKeyState
GetWindowLongA
SetWindowLongA
GetParent
EnableScrollBar
IsWindowVisible
GetDC
ReleaseDC
InvalidateRect
GetWindowRect
PostMessageA
UnregisterClassA
CopyRect
SetCursor
LoadCursorA
GetDlgItem
CheckDlgButton
IsIconic
GetActiveWindow
GetSystemMetrics
GetSystemMenu
AppendMenuA
DrawIcon
LoadBitmapW
LoadIconW
GetFocus
CheckRadioButton
FillRect
ScreenToClient
PostQuitMessage
SetWindowTextA
GetWindowTextA
GetWindowTextLengthA
ShowScrollBar
IsWindow
MessageBeep
GetNextDlgTabItem
LoadMenuA
DestroyMenu
GetSubMenu
TrackPopupMenuEx
DrawStateA
ClientToScreen
WindowFromPoint
DrawFocusRect
FrameRect
InflateRect
LoadImageW
TrackMouseEvent
LoadMenuW
SetWindowRgn
IsRectEmpty
InsertMenuA
MonitorFromPoint
NotifyWinEvent
ModifyMenuA
PostThreadMessageA
GetKeyboardLayout
GetKeyboardState
ToAsciiEx
LoadAcceleratorsW
CreateAcceleratorTableA
DestroyAcceleratorTable
CopyAcceleratorTableA
EnumChildWindows
RegisterClipboardFormatA
LockWindowUpdate
SetClassLongA
UnionRect
UpdateLayeredWindow
GetWindowRgn
GetComboBoxInfo
CreateMenu
GetDoubleClickTime
InvertRect
HideCaret
GetUpdateRect
SubtractRect
MapVirtualKeyExA
IsCharLowerA
TranslateMDISysAccel
DefMDIChildProcA
DefFrameProcA
DrawMenuBar
CopyIcon
CharUpperBuffA
SetMenuDefaultItem
GetMenuDefaultItem
SetCursorPos
BeginPaint

gdi32

SelectObject
SetPixel
SetTextColor
GetTextExtentPoint32A
Rectangle
Polygon
CreateDCA
Escape
GetMapMode
PtVisible
RectVisible
GetTextMetricsA
TextOutA
ExtTextOutA
DPtoLP
LPtoDP
RoundRect
CopyMetaFileA
CreateHatchBrush
CreateRectRgn
ExcludeClipRect
GetClipBox
GetObjectType
GetViewportExtEx
GetWindowExtEx
IntersectClipRect
LineTo
RestoreDC
SaveDC
SelectClipRgn
ExtSelectClipRgn
SelectPalette
SetMapMode
SetLayout
GetLayout
SetPolyFillMode
SetROP2
SetTextAlign
MoveToEx
GetPixel
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
CreateRectRgnIndirect
PatBlt
CreateDIBitmap
EnumFontFamiliesA
GetTextCharsetInfo
CombineRgn
SetRectRgn
GetDIBits
RealizePalette
CreateDIBSection
SetDIBColorTable
CreateRoundRectRgn
GetRgnBox
OffsetRgn
CreateEllipticRgn
Ellipse
CreatePolygonRgn
Polyline
EnumFontFamiliesExA
CreatePalette
GetNearestPaletteIndex
GetPaletteEntries
GetSystemPaletteEntries
ExtFloodFill
SetPaletteEntries
GetViewportOrgEx
GetWindowOrgEx
FillRgn
FrameRgn
GetBoundsRect
PtInRegion
GetTextFaceA
SetPixelV
CreateCompatibleBitmap
GetTextColor
GetBkColor
BitBlt
StretchBlt
CreateCompatibleDC
GetStockObject
CreatePatternBrush
DeleteDC
GetDeviceCaps
CreatePen
GetObjectA
CreateFontIndirectA
SetBkMode
SetBkColor
DeleteObject
CreateBrushIndirect
CreateSolidBrush
CreateBitmap
CreateFontA

msimg32

TransparentBlt
AlphaBlend

winspool.drv

ClosePrinter
DocumentPropertiesA
OpenPrinterA

advapi32

RegEnumKeyA
RegCloseKey
RegCreateKeyExA
RegEnumKeyExA
RegEnumValueA
RegQueryValueA
RegSetValueExA
RegQueryValueExA
RegOpenKeyExA
RegDeleteValueA
RegDeleteKeyA

shell32

ShellExecuteExA
SHGetPathFromIDListA
SHBrowseForFolderA
SHGetDesktopFolder
SHGetFileInfoA
DragQueryFileA
DragFinish
SHAppBarMessage
SHGetSpecialFolderLocation
SHGetMalloc
ShellExecuteA

comctl32

ImageList_GetImageCount
_TrackMouseEvent

shlwapi

PathFindFileNameA
PathFindExtensionA
PathStripToRootA
PathRemoveFileSpecW
StrFormatKBSizeA
PathIsUNCA

uxtheme

GetThemeColor
DrawThemeParentBackground
IsAppThemed
DrawThemeText
OpenThemeData
CloseThemeData
DrawThemeBackground
GetCurrentThemeName
IsThemeBackgroundPartiallyTransparent
GetThemePartSize
GetWindowTheme
GetThemeSysColor

ole32

CoLockObjectExternal
RegisterDragDrop
RevokeDragDrop
IsAccelerator
OleTranslateAccelerator
OleCreateMenuDescriptor
OleLockRunning
OleGetClipboard
DoDragDrop
CreateStreamOnHGlobal
CoDisconnectObject
CoInitializeEx
CoCreateGuid
CoUninitialize
CoInitialize
CoCreateInstance
ReleaseStgMedium
OleDuplicateData
CoTaskMemAlloc
CoTaskMemFree
OleDestroyMenuDescriptor

oleaut32

VariantClear
VariantChangeType
SysStringLen
VariantInit
VarBstrFromDate
VariantCopy
LoadTypeLi
SysAllocString
SysAllocStringLen
SystemTimeToVariantTime
VariantTimeToSystemTime
SysFreeString
VarUdateFromDate
SysAllocStringByteLen

gdiplus

GdipDrawImageRectI
GdipSetInterpolationMode
GdipCreateFromHDC
GdipCreateBitmapFromHBITMAP
GdipDrawImageI
GdipDeleteGraphics
GdipBitmapUnlockBits
GdiplusShutdown
GdipAlloc
GdipFree
GdiplusStartup
GdipCloneImage
GdipDisposeImage
GdipGetImageGraphicsContext
GdipGetImageWidth
GdipGetImageHeight
GdipGetImagePixelFormat
GdipGetImagePalette
GdipGetImagePaletteSize
GdipCreateBitmapFromStream
GdipCreateBitmapFromScan0
GdipBitmapLockBits

wininet

InternetAttemptConnect
HttpQueryInfoA
InternetOpenUrlA
HttpSendRequestA
HttpOpenRequestA
InternetReadFile
InternetConnectA
InternetCloseHandle
InternetOpenA

secur32

GetUserNameExA

oleacc

AccessibleObjectFromWindow
LresultFromObject
CreateStdAccessibleObject

imm32

ImmReleaseContext
ImmGetOpenStatus
ImmGetContext

winmm

PlaySoundA

Sections

.text
Size: 4.6MB - Virtual size: 4.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1.9MB - Virtual size: 1.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 217KB - Virtual size: 496KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6.3MB - Virtual size: 6.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c75ccccc12d6d6c80930b22ee027c228

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

msimg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

uxtheme

ole32

oleaut32

gdiplus

wininet

secur32

oleacc

imm32

winmm

Sections

.text Size: 4.6MB - Virtual size: 4.6MB

.rdata Size: 1.9MB - Virtual size: 1.9MB

.data Size: 217KB - Virtual size: 496KB

.rsrc Size: 6.3MB - Virtual size: 6.3MB

.text
Size: 4.6MB - Virtual size: 4.6MB

.rdata
Size: 1.9MB - Virtual size: 1.9MB

.data
Size: 217KB - Virtual size: 496KB

.rsrc
Size: 6.3MB - Virtual size: 6.3MB